cyber Cyber Attack

The North Face, a VF Company

Sep 23, 2022 1 min read
The North Face, a VF Company

Outdoor apparel brand 'The North Face' suffered a large-scale credential stuffing attack that resulted in the hacking of 194,905 accounts on the thenorthface.com website.

The attack affected about 200,000 accounts and compromised information like full name, purchase history, billing address, shipping address, contact number, XPLR Pass reward records, and other information.

The North Face reset all user passwords and wiped out all payment card tokens on accounts accessed by unauthorized intruders.

The impacted customers with an account on the website were also asked to enter a new password and re-enter their payment card details to make a purchase.

Source: https://www.bleepingcomputer.com/news/security/200-000-north-face-accounts-hacked-in-credential-stuffing-attack/

TPRM report: https://scoringcyber.rankiteo.com/company/the-north-face

"id": "the224421922",
"linkid": "the-north-face",
"type": "Cyber Attack",
"date": "09/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'customers_affected': '194,905',
                        'industry': 'Outdoor Apparel',
                        'name': 'The North Face',
                        'type': 'Company'}],
 'attack_vector': 'Credential Stuffing',
 'data_breach': {'number_of_records_exposed': '194,905',
                 'type_of_data_compromised': ['full name',
                                              'purchase history',
                                              'billing address',
                                              'shipping address',
                                              'contact number',
                                              'XPLR Pass reward records',
                                              'other information']},
 'description': "Outdoor apparel brand 'The North Face' suffered a large-scale "
                'credential stuffing attack that resulted in the hacking of '
                '194,905 accounts on the thenorthface.com website.',
 'impact': {'data_compromised': ['full name',
                                 'purchase history',
                                 'billing address',
                                 'shipping address',
                                 'contact number',
                                 'XPLR Pass reward records',
                                 'other information'],
            'systems_affected': 'thenorthface.com website'},
 'response': {'recovery_measures': ['Impacted customers were asked to enter a '
                                    'new password and re-enter their payment '
                                    'card details to make a purchase'],
              'remediation_measures': ['Reset all user passwords',
                                       'Wiped out all payment card tokens on '
                                       'accounts accessed by unauthorized '
                                       'intruders']},
 'title': 'Credential Stuffing Attack on The North Face',
 'type': 'Credential Stuffing Attack'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.